Small doubt from a newbie :)

Rob Sterenborg rob at sterenborg.info
Tue Nov 7 10:25:42 CET 2006


On Tue, November 7, 2006 09:34, utteerna wrote:
> Hi all,
>
>
> I want to use the iptables "-m random" option.
>
>
> I visited - http://www.netfilter.org/documentati...O-2.html#ss2.1
> <http://www.netfilter.org/documentation/HOWTO/netfilter-extensions-HOWTO-2.htm
> l#ss2.1>
>
> to get p-o-m but login failed. Can anyone guide me on how to install this
> patch.

To download a new pom (pom-ng nowadays) go to the Netfilter FTP site
(ftp.netfilter.org/pub/patch-o-matic-ng/) and download it there; one of the
snapshots should do.

> In the iptables source dowloaded from net i see the libipt_random.c but
> when i do a make it doesn't complile to generate a ".so".

You have to configure your kernel to include "random" support and install it.
I just checked but the "random" match is not in 2.4.33.3 or 2.6.18.2 so you'll
have to patch your kernel for this to work. Then compile and install iptables.

To patch the kernel:
- untar kernel source
- untar iptables source
- untar pom-ng source
- run:
  KERNEL_DIR=/path/to/kernel \
  IPTABLES_DIR=/path/to/iptables \
  ./runme extra


Grts,
Rob





More information about the netfilter mailing list